Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10

Let us learn how to inject the ADMX policy for Google chrome browser using Intune. Manage & Deploy Chrome ADMX Policies using Intune on Windows 10 devices.

NOTE! – Need to inject ADMX policies for Chrome before deploying any Chrome browser policies.

Download Chrome ADMX

Chrome ADMX File

  • Locate Chrome.ADMX file from Chrome\Configuration\admx folder. This file will be used in the below section of the post.
Deploy Chrome ADMX Policies using Intune - Chrome.ADMX
Deploy Chrome ADMX Policies using Intune – Chrome.ADMX

Create Chrome ADMX Injection Policy

  • Login to Endpoint.Microsoft.com
  • Navigate to Devices Configuration profiles
  • Click on +Create Profile
  • Select Platform – Windows 10 and Later
  • Select Profile – Custom
  • Click on Create
Deploy Chrome ADMX Policies using Intune - Chrome.ADMX
Deploy Chrome ADMX Policies using Intune – Chrome.ADMX
  • Enter the Name – Chrome ADMX Ingestion
  • Enter the Description – Chrome ADMX Ingestion
  • Click on Next
Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10 1
Deploy Chrome ADMX Policies using Intune – Chrome.ADMX
  • Click on Add
Deploy Chrome ADMX Policies using Intune - Chrome.ADMX
Deploy Chrome ADMX Policies using Intune – Chrome.ADMX
  • Enter the Name – Chrome ADMX Ingestion
  • Enter the Description – Chrome ADMX Ingestion
  • Enter OMA-URI Value – ./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/Chrome/Policy/ChromeAdmx
  • Select Data type – String
  • Enter the content of Chrome.admx file content (as mentioned in the above section) in the VALUE section.
  • Click on Add
  • Click on Next
Deploy Chrome ADMX Policies using Intune - Chrome.ADMX
Deploy Chrome ADMX Policies using Intune – Chrome.ADMX
  • Select the Scope (Tags)
  • Click +Add
  • Select Tags -> Test
  • Click on Select
  • Click OK

Assigment Chrome ADMX Policies using Intune

  • On the Assignments page.
  • Click on + Select Groups to Include.
  • Search for Azure AD Device Group which you want Inject Chrome ADMX policy.
  • Click on the group – HTMD Windows Devices.
  • Click on the Select button.
  • Click on the Next button to continue.
Assign Chrome ADMX Policies using Intune - Chrome.ADMX
Assign Chrome ADMX Policies using Intune – Chrome.ADMX
  • Applicability Rules – Specify how to apply this profile within an assigned group. Intune will only apply the profile to devices that meet the combined criteria of these rules.
  • Click on Create button to complete the deployment of Chrome ADMX policies.
Chrome ADMX Policies using Intune - Chrome.ADMX
Chrome ADMX Policies using Intune – Chrome.ADMX Injection

Results & Troubleshooting

You can verify the ADMX injection for the Chrome browser using Intune. The following information might help you to troubleshoot the issue related to ADMX injection on Windows 10 devices.

Intune Portal

  • Intune Portal Results
Chrome ADMX Policies using Intune - Chrome.ADMX Injection
Chrome ADMX Policies using Intune – Chrome.ADMX Injection

Windows 10 Event Logs

  • Windows 10 Event Logs – Microsoft-Windows-DeviceManagement-Enterprise-Diagnostics-Provider/Admin
MDM PolicyManager: ADMX Ingestion: EnrollmentId (D8D5A74A-020E-40F2-BA69-086EDDDD9F08), app name (Chrome), setting type (Policy), unique Id (ChromeAdmx), area (NULL).
MDM PolicyManager: ADMX ingestion starting new Admx ingestion. EnrollmentId (D8D5A74A-020E-40F2-BA69-086EDDDD9F08), app name (Chrome), setting type (Policy), unique Id (ChromeAdmx).
Chrome ADMX Policies using Intune - Chrome.ADMX Injection
Chrome ADMX Policies using Intune – Chrome.ADMX Injection

Windows 10 Registry

  • Registry Entries
    • Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\AdmxInstalled\D8D5A74A-020E-40F2-BA69-086EDDDD9F08\Chrome\Policy\ChromeAdmx
Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10 2
Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10 13
  • Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\PolicyManager\AdmxDefault
Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10 3
Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10 14

Video Recording Google Chrome ADMX Injection

ADMX Injection

Resources

2 thoughts on “Manage Chrome ADMX Policies using Intune | ADMX Injection Process on Windows 10”

  1. So can we use this to do configure any GPO policies via Intune? I have 200+ laptops that are AzureAD joined only. We are trying to lock them down as almost to be like thin clients. We were using the Multi-App Kiosk policy but this forces “Tablet Mode” which does not work if the user has multiple monitors (most do). I am trying to re-create all the security from this policy manually, but Intune is severely limited.

    Reply
  2. Thanks for this page!
    I’m trying to install the Google ADMX via intune to Windows 10 Home edition –
    the event log gives me
    MD Configurationmanger.Command failure status. Configuration Source ID (xxxxxx) Enrollment type: (MDMFULL) CSP Name (Policy), Command Type: (Add: from Replace or Add), Result: (./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall).

    I’ve done both AD Join and DMD only attaching of this version Home computer and both give this same issue.

    Is Home edition simply not supported for ADMX based policies?

    Reply

Leave a Comment